Skip to content

Commit

Permalink
Merge pull request #885 from Mathieu4141/threat-actor/keksec-ba96cbce…
Browse files Browse the repository at this point in the history
…-c2bc-4b6b-9404-43ded4c97a19

[threat-actors] Add Keksec
  • Loading branch information
adulau authored Nov 2, 2023
2 parents 7895b73 + 5b1af60 commit dd43add
Showing 1 changed file with 13 additions and 0 deletions.
13 changes: 13 additions & 0 deletions clusters/threat-actor.json
Original file line number Diff line number Diff line change
Expand Up @@ -12092,6 +12092,19 @@
},
"uuid": "79d0da59-9400-40f6-b72b-6c6f47354d59",
"value": "Scarred Manticore"
},
{
"description": "The threat group behind EnemyBot, Keksec, is well-resourced and has the ability to update and add new capabilities to its arsenal of malware on a daily basis (see below for more detail on Keksec)",
"meta": {
"refs": [
"https://www.fortinet.com/blog/threat-research/enemybot-a-look-into-keksecs-latest-ddos-botnet",
"https://www.cybersecurity-insiders.com/rapidly-evolving-iot-malware-enemybot-now-targeting-content-management-system-servers-and-android-devices/?utm_source=rss&utm_medium=rss&utm_campaign=rapidly-evolving-iot-malware-enemybot-now-targeting-content-management-system-servers-and-android-devices",
"https://blog.netlab.360.com/necro-upgrades-again-using-tor-dynamic-domain-dga-and-aiming-at-both-windows-linux/",
"https://blog.netlab.360.com/gafgtyt_tor-and-necro-are-on-the-move-again/"
]
},
"uuid": "b01f7ed8-db75-45c7-ac7b-60aa4a1f7f4b",
"value": "Keksec"
}
],
"version": 288
Expand Down

0 comments on commit dd43add

Please sign in to comment.